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DETAILED ACTION 



1 . Claims 1 -1 9 have been examined. 



Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

2. Claims 1, 2, 4, 5, 10-13 and 19 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Ene (US 6,928,277) in view of Marcovici et al. ("Global 

Authentication," Lucent Technologies TIA TR-56 Committee white paper, November 

1999), hereafter Marcovici. 

Regarding claim 1, Ene discloses a method for strong authentication 

comprising: 

sending a random number to a mobile node (random number RAND generated 
and sent to mobile station; col. 10, lines 46-52); 

generating a MN signature using the MN, wherein the MN signature is generated 
using the random number (signature SRES generated using the random number RAND; 
col. 11, lines 8-10); 
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authenticating the MN to a network, wherein the network is a GPRS network 
(GPRS/GSM network; col. 10, lines 56-57; authenticating mobile station to the network 
by sending SRES in an "authentication response" message; col. 11, lines 1-10). 

But Ene does not explicitly explain (1) that the random number is generated local 
to the MN in a GPRS network and (2) authenticating the network to the MN. 

However, Ene teaches a GPRS network that integrates features of the ANSI-41 
network (col. 3, lines 2-28), including integrating particular steps of authenticating a 
mobile station per ANSI-41 protocol with the GPRS authentication protocol for the 
purpose of efficiently providing GPRS services on an ANSI-41 network (col. 2, lines 57- 
63; col. 13, lines 7-24). Ene also teaches that a step of ANSI-41 authentication includes 
generating a random number locally to the MN and transmitting it to the MN (RAND 
generated locally and sent to mobile station; col. 7, line 26) for the purpose of providing 
the mobile station with a random number for computing an authenticating signature (col. 
7, lines 24-25). One of ordinary skill in the art would recognize that the random number 
RAND used to generate the ANSI-41 authenticating signature would be utilized as well 
to generate the GPRS authenticating signature, as this most closely parallels the legacy 
infrastructure as well as being a simple and secure means of generating a unique 
signature. 

In addition, Marcovici teaches a method for strong authentication including the 
step of authenticating the network to the mobile station (page 5, section 4.1 .1 , 
particularly step e) for the purpose of enhancing the security of both ANSI-41 and 
GSM/GPRS authentication protocols (page 1, section 1). 
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Therefore, it would be obvious to one of ordinary skill in the art at the time the 
invention was made to modify the method of Ene with the teaching of Marcovici to 
provide that the random number is generated local to the MN in a GPRS network and 
for authenticating the network to the MN. One would be motivated to do so in order to 
enhance security and provide GPRS services over an ANSI-41 network infrastructure. 

Regarding claim 2, the modified method of Ene and Marcovici is relied upon as 
applied to claim 1 , and Ene and Marcovici further teach that authenticating the MN to 
the network further comprises sending the MN signature to an authentication server; 
and verifying, by the authentication server, the mobile node signature (SRES sent to 
MSC/VLR or SGSN for verification; col. 11, lines 8-10). Therefore, for reasons applied 
above, such a claim also would have been obvious. 

Regarding claim 4, the modified method of Ene and Marcovici is relied upon as 
applied to claim 1 , and Ene and Marcovici further teach that authenticating the network 
to the MN further comprises generating an authentication signature by the 
authentication server and sending the authentication signature to the MN (Network 
Signature AS is generated and sent to mobile station; page 5, section 4.1.1, particularly 
step e). Therefore, for reasons applied above, such a claim also would have been 
obvious. 

Regarding claim 5, the modified method of Ene and Marcovici is relied upon as 
applied to claim 1 , and Ene and Marcovici further teach that the method of claim 4 
further comprises verifying, by the MN, the authentication signature (Network Signature 
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AS is validated by mobile station; page 5, section 4.1.1, particularly step e). Therefore, 
for reasons applied above, such a claim also would have been obvious. 

Regarding claims 10-13 and 19, these are system versions of the claimed 
method above (claims 1,2,4 and 5). Therefore, for the reasons applied above, such 
claims also would have been obvious. 

Allowable Subject Matter 

3. Claims 3, 6-9 and 14-18 are objected to as being dependent upon a rejected 
base claim, but would be allowable if rewritten in independent form including all of the 
limitations of the base claim and any intervening claims. 

4. The following is a statement of reasons for the indication of allowable subject 
matter: 

Regarding claim 3, the closest prior art, the modified method of Ene and 
Marcovici, does not explain that the random number js generated by a base station. 
Ene and Marcovici teach that the random number is "generated locally at the MSC 
level" but provide no suggestion that the base station generates the number (Ene: col. 
7, line 26). In fact, Ene and Marcovici teach that for GPRS authentication the base 
station "acts as a transport only, except for air interface ciphering" (Ene: col. 11, lines 
22-23). As such, it would not seem obvious to one of ordinary skill in the art to modify 
the method of Ene and Marcovici to provide that the random number is generated by a 
base station. 
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Regarding claim 6, the closest prior art, the modified method of Ene and 
Marcovici, does not explain that the authentication server is a home authentication 
server (AAAH). Ene and Marcovici teach that the authentication server is the MSCA/LR 
or SGSN and make no reference to a home authentication server (AAAH) or the 
authentication, authorization, and accounting (AAA) protocol. 

Akhtar et al. (US 6,769,000) teaches use of the authentication, authorization, and 
accounting (AAA) protocol with conventional networks like GSM (col. 25, line 25-col. 26, 
line 59). But Akhtar et al. states that "strong authentication is preferred in the present 
invention" without providing motivation or sufficient detail pertaining the method of 
strong authentication to combine its teaching with Ene and Marcovici, much less 
explaining how the AAAH would be integrated. 

Therefore, it would not seem obvious to one of ordinary skill in the art at the time 
the invention was made to modify the method of Ene and Marcovici to provide that the 
authentication server is a home authentication server (AAAH). 

Claims 7-9 are allowable by virtue of their dependence on claim 6. 

Regarding claims 14-18, this is a system version of the claimed method above 
(claims 6-9). Therefore, for the reasons applied above, such claims also would be 
allowable. 



Conclusion 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to John Elmore whose telephone number is 571-272-4224. 
The examiner can normally be reached on M 10-8, T-Th 9-7. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Greg Morse can be reached on 571-272-3838. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



John Elmore 
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